OSDN > Find Software > System > Networking > Firewalls > Port Scan Attack Detector > Download File List > #145226

Port Scan Attack Detector

RSS
Download List

Project Description

The Port Scan Attack Detector (psad) is a collection of three system daemons that are designed to work with the Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults), verbose alert messages, email alerting, DShield reporting, and automatic blocking of offending IP addresses. Psad incorporates many of the packet signatures included in Snort to detect various kinds of suspicious scans, and implements the same passive OS fingerprinting algorithm used by p0f.

System Requirements

System requirement is not defined

Review

Average

0.0

0 Reviews

5 Stars	0
4 Stars	0
3 Stars	0
2 Stars	0
1 Star	0

Your rating

Review this project

Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2007-03-25 09:01 Back to release list
2.0.6

Integration with fwsnort was improved, so psad
signature match syslog messages and email alerts
now include the fwsnort rule number (for fwsnort
version 0.9.0 and greater) and chain information.
The Snort bleeding-all.rules signature file from
the Bleeding Snort project was added. uname,
ifconfig, and syslog process information were
added to --Dump-conf output. The psad.SlackBuild
script was added for building psad on Slackware
systems. It uses the Cipherdyne cd_rpmbuilder
script to first build an RPM, and then uses it to
build a Slackware package.

Tags: Minor feature enhancements

Project Resources

Project Page Download: bzip2 Download: Changelog Download: Debian Package (deb) Home Page Download: List Download: Mirror Download: RPM Download: TGZ